This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/7b67fb-c8ba-462c-b064-7c65aec6f2bd/1/Gf-9RToHV8wPDoXU7Oara5nxIUM.roa File: Gf-9RToHV8wPDoXU7Oara5nxIUM.roa (raw, json) Hash identifier: VsHDJwIPTlkkP+eDBuFbkPtE/oNd7HaXUP1nGykcuDA= Subject key identifier: 19:FF:BD:45:3A:07:57:CC:0F:0E:85:D4:EC:E6:AB:6B:99:F1:21:43 Certificate issuer: /CN=4aa5e35c05c2ab54be758b6c867186cee159bd63 Certificate serial: 019B7BA323D0EB47DE0EE7B4B9A49FE13140 Authority key identifier: 4A:A5:E3:5C:05:C2:AB:54:BE:75:8B:6C:86:71:86:CE:E1:59:BD:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SqXjXAXCq1S-dYtshnGGzuFZvWM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/7b67fb-c8ba-462c-b064-7c65aec6f2bd/1/Gf-9RToHV8wPDoXU7Oara5nxIUM.roa Signing time: Thu 01 Jan 2026 22:17:27 +0000 ROA not before: Thu 01 Jan 2026 22:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60973 IP address blocks: 91.223.238.0/24 maxlen: 24 91.237.33.0/24 maxlen: 24 2001:67c:1124::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/7b67fb-c8ba-462c-b064-7c65aec6f2bd/1/SqXjXAXCq1S-dYtshnGGzuFZvWM.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/7b67fb-c8ba-462c-b064-7c65aec6f2bd/1/SqXjXAXCq1S-dYtshnGGzuFZvWM.mft rsync://rpki.ripe.net/repository/DEFAULT/SqXjXAXCq1S-dYtshnGGzuFZvWM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:23:d0:eb:47:de:0e:e7:b4:b9:a4:9f:e1:31:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4aa5e35c05c2ab54be758b6c867186cee159bd63 Validity Not Before: Jan 1 22:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=19ffbd453a0757cc0f0e85d4ece6ab6b99f12143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c5:37:39:f2:62:02:b2:44:d8:f5:1e:2e:f7: ce:36:76:20:91:6e:e1:32:d2:6d:3e:ef:ee:4b:a0: b8:c6:1a:1c:59:ba:fa:c1:df:e2:5a:71:37:f1:2a: e2:50:04:31:94:d6:7f:eb:fb:59:1d:34:2b:68:8b: 77:a5:98:fc:db:52:ab:72:bd:03:5d:ce:59:44:6c: b2:45:dc:85:50:ad:ad:fe:60:d8:36:b6:a3:ab:79: 8d:3b:c4:39:f9:a2:e3:ca:f9:f2:97:2c:d2:f0:5e: de:f4:3b:98:6b:e7:13:f7:1d:e4:77:41:8a:d1:85: 6b:62:81:26:1c:15:f6:c6:2b:86:8d:f8:63:03:15: 04:58:c2:dc:cb:88:36:dc:ee:e4:bc:0d:a9:a8:fa: 45:3c:b6:4f:9d:f5:ec:80:53:d4:fe:8d:ed:dc:7e: c4:54:53:49:a5:27:ac:99:c7:48:e9:ed:71:65:2c: 84:f9:0c:34:35:b6:0b:68:09:f6:26:73:73:1c:e9: e8:93:4a:11:df:e6:c7:09:8a:ec:51:19:c4:c6:16: 69:d0:03:1e:30:6b:25:d8:18:6b:d2:ab:60:ba:e7: 74:b2:95:89:0a:1f:e3:fc:e9:14:aa:0b:3f:63:af: 46:6f:6a:86:77:94:26:fe:81:0b:e7:2c:ee:ba:63: b4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FF:BD:45:3A:07:57:CC:0F:0E:85:D4:EC:E6:AB:6B:99:F1:21:43 X509v3 Authority Key Identifier: keyid:4A:A5:E3:5C:05:C2:AB:54:BE:75:8B:6C:86:71:86:CE:E1:59:BD:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SqXjXAXCq1S-dYtshnGGzuFZvWM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/7b67fb-c8ba-462c-b064-7c65aec6f2bd/1/Gf-9RToHV8wPDoXU7Oara5nxIUM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/7b67fb-c8ba-462c-b064-7c65aec6f2bd/1/SqXjXAXCq1S-dYtshnGGzuFZvWM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.223.238.0/24 91.237.33.0/24 IPv6: 2001:67c:1124::/48 Signature Algorithm: sha256WithRSAEncryption 05:aa:c6:ce:9a:3b:b4:66:7f:df:44:df:e3:5d:f7:f0:7e:e8: c2:2a:c3:e5:bf:b5:ce:97:59:84:e2:fd:15:00:d7:85:59:e1: 0a:20:ed:aa:71:21:8e:b8:97:01:65:e4:47:12:46:b2:1b:15: 64:94:19:f3:65:d6:9b:be:44:e2:c0:13:db:aa:50:61:46:e9: 3d:19:4b:5c:ee:09:60:d4:7c:63:62:c9:d5:35:d3:bd:c2:5a: 97:2d:a1:6d:62:30:e7:ca:31:a8:04:53:dd:0c:18:bf:8d:44: 55:11:28:40:0a:fd:88:f6:2d:d4:0e:dd:4c:80:ee:3b:65:f9: 5c:7e:ea:3d:5a:7b:1d:91:6a:a5:97:30:94:a6:1f:8c:89:21: 77:f1:b7:cc:75:c6:d8:76:d0:78:ad:79:b1:d2:ca:ff:8b:9d: 9c:7b:61:fe:4f:b9:33:b9:a0:54:83:91:40:89:a0:8f:6c:f3: 1a:d6:0c:d1:c3:eb:a0:c4:ee:31:56:1f:2f:5e:8a:38:a1:ab: 14:94:0e:0e:71:73:36:36:63:c1:82:2c:a7:33:a9:05:ff:50: bb:5e:0c:1c:18:a8:9c:ba:d3:41:af:81:8c:16:c1:57:6b:d9: 3e:a7:1f:13:71:2d:42:34:ac:be:fc:22:8a:ac:a5:82:05:a4: dd:82:16:7b -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt7oyPQ60feDue0uaSf4TFAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhYTVlMzVjMDVjMmFiNTRiZTc1OGI2Yzg2NzE4NmNlZTE1 OWJkNjMwHhcNMjYwMTAxMjIxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxOWZmYmQ0NTNhMDc1N2NjMGYwZTg1ZDRlY2U2YWI2Yjk5ZjEyMTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMU3OfJiArJE2PUeLvfONnYgkW7h MtJtPu/uS6C4xhocWbr6wd/iWnE38SriUAQxlNZ/6/tZHTQraIt3pZj821Krcr0D Xc5ZRGyyRdyFUK2t/mDYNrajq3mNO8Q5+aLjyvnylyzS8F7e9DuYa+cT9x3kd0GK 0YVrYoEmHBX2xiuGjfhjAxUEWMLcy4g23O7kvA2pqPpFPLZPnfXsgFPU/o3t3H7E VFNJpSesmcdI6e1xZSyE+Qw0NbYLaAn2JnNzHOnok0oR3+bHCYrsURnExhZp0AMe MGsl2Bhr0qtguud0spWJCh/j/OkUqgs/Y69Gb2qGd5Qm/oEL5yzuumO0kwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFBn/vUU6B1fMDw6F1Ozmq2uZ8SFDMB8GA1UdIwQY MBaAFEql41wFwqtUvnWLbIZxhs7hWb1jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3FYalhBWENxMVMtZFl0c2huR0d6dUZadldNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy83YjY3ZmItYzhiYS00NjJjLWIwNjQt N2M2NWFlYzZmMmJkLzEvR2YtOVJUb0hWOHdQRG9YVTdPYXJhNW54SVVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy83YjY3ZmItYzhiYS00NjJjLWIwNjQtN2M2NWFlYzZmMmJk LzEvU3FYalhBWENxMVMtZFl0c2huR0d6dUZadldNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAW9/uAwQA W+0hMA8EAgACMAkDBwAgAQZ8ESQwDQYJKoZIhvcNAQELBQADggEBAAWqxs6aO7Rm f99E3+Nd9/B+6MIqw+W/tc6XWYTi/RUA14VZ4Qog7apxIY64lwFl5EcSRrIbFWSU GfNl1pu+ROLAE9uqUGFG6T0ZS1zuCWDUfGNiydU1073CWpctoW1iMOfKMagEU90M GL+NRFURKEAK/Yj2LdQO3UyA7jtl+Vx+6j1aex2RaqWXMJSmH4yJIXfxt8x1xth2 0HitebHSyv+LnZx7Yf5PuTO5oFSDkUCJoI9s8xrWDNHD66DE7jFWHy9eijihqxSU Dg5xczY2Y8GCLKczqQX/ULteDBwYqJy600GvgYwWwVdr2T6nHxNxLUI0rL78Ioqs pYIFpN2CFns= -----END CERTIFICATE-----Generated at Tue Feb 10 03:06:08 2026 by rpki-client